Appian Community
Site
Search
Sign In/Register
Site
Search
User
DISCUSS
LEARN
SUCCESS
SUPPORT
Documentation
AppMarket
More
Cancel
I'm looking for ...
State
Not Answered
Replies
3 replies
Subscribers
5 subscribers
Views
1655 views
Users
0 members are here
Share
More
Cancel
Related Discussions
Home
»
Discussions
»
Integrations
HI, We have built a LDAP SYnc process using the LDAP Sync smart service. I
balam
over 8 years ago
HI,
We have built a LDAP SYnc process using the LDAP Sync smart service. I would like to know the most elegant way to address the following scenario.
In AD, we use nested AD groups E.g. "All Branch Users" group has around 800 subgroups (Branch 1, Branch 2, Branch 3 etc..), and the users are part of these subgroups. Requirement is to sync all the users in Branches to "Branch Users" group in Appian.
Is there s way to pass in "All Branch Users" AD group and Sync all the users from the child groups (Branch 1, Branch 2---) etc to "Branch Users" group in Appian?
OriginalPostID-170647
OriginalPostID-170647
Discussion posts and replies are publicly visible
Top Replies
balam
over 8 years ago
+1
Resolution: We were able to get this working by adding the following in Sync filter. "1.2.840.113556.1.4.1941 LDAP_MATCHING_RULE_IN_CHAIN This rule is limited to filters that apply to the DN. This is a…
0
vikask146
over 8 years ago
Trying ti understand this use case and wondering how does this matter at AD side if you are syncing all users in Appian. Are you planning or creating same branches order in Appian also ?
Cancel
Vote Up
0
Vote Down
Sign in to reply
Verify Answer
Cancel
0
balam
over 8 years ago
We are not intending on syncing all users from AD to Appian, but only the users under specific AD groups. In this specific example, we will need to sync the users from "All Branch Users" AD group (which do not have direct users in that group, but has around 800 subgroups which has users in it) to "Branch Users" group in Appian
Cancel
Vote Up
0
Vote Down
Sign in to reply
Verify Answer
Cancel
0
balam
over 8 years ago
Resolution:
We were able to get this working by adding the following in Sync filter.
"1.2.840.113556.1.4.1941 LDAP_MATCHING_RULE_IN_CHAIN This rule is limited to filters that apply to the DN. This is a special "extended match operator that walks the chain of ancestry in objects all the way to the root until it finds a match."
For reference:
msdn.microsoft.com/.../aa746475(v=vs.85).aspx
Cancel
Vote Up
+1
Vote Down
Sign in to reply
Verify Answer
Cancel